CN105100124B - A kind of firewall management system, client, server end and method - Google Patents
A kind of firewall management system, client, server end and method Download PDFInfo
- Publication number
- CN105100124B CN105100124B CN201510583536.5A CN201510583536A CN105100124B CN 105100124 B CN105100124 B CN 105100124B CN 201510583536 A CN201510583536 A CN 201510583536A CN 105100124 B CN105100124 B CN 105100124B
- Authority
- CN
- China
- Prior art keywords
- fire wall
- client
- server end
- djangorestful
- frames
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 16
- 238000012545 processing Methods 0.000 claims abstract description 19
- 238000007726 management method Methods 0.000 claims description 36
- 238000011161 development Methods 0.000 description 3
- 238000013497 data interchange Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 241000406668 Loxodonta cyclotis Species 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000008030 elimination Effects 0.000 description 1
- 238000003379 elimination reaction Methods 0.000 description 1
- 230000002349 favourable effect Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 206010022000 influenza Diseases 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 230000002265 prevention Effects 0.000 description 1
- 238000013515 script Methods 0.000 description 1
- 230000009466 transformation Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The invention discloses a kind of firewall management system, client, server end and methods, including:Client sends the solicited message of user to server end for being interacted with user, and shows the information of fire wall, the result information that processing server returns.Server end, for providing web application interface Web API, the solicited message that processing client is sent simultaneously is interacted with fire wall, and information is returned the result by the command down-transmitting for the fire wall for including in solicited message to system kernel and to client.Wherein, client uses BootStrap front end frames;Server end uses DjangoRestful frames.Scheme through the invention enables to the management of fire wall convenient, easy-to-use, improves the experience sense of user.
Description
Technical field
The present invention relates to Pyhton Web development system management domains, and in particular to a kind of firewall management system, client
End, server end and method.
Background technology
With the rapid development of computer technology and Internet technology, the network information security and efficient system fortune
Dimension becomes the needs of socio-economic development.Linux fire walls have the characteristics that reasonable for structure, functional, are obtained in security fields
Obtain favorable comment and the extensive use of industry.Traditional linux firewall managements and O&M mostly use greatly shell scripts or order
The form of row or GUI carry out related management and the configuration of operating system.But these conventional management modes not only need system
Operation maintenance personnel possesses the operating system knowledge and skills of profession, but also that there are management works is cumbersome, configuration process is complicated, easy
There is errors and omissions, ease for use and flexibility shortcoming.Easy-to-use firewall management and it is configured as system administration and fortune
Tie up an indispensable component part.
Invention content
To solve the above-mentioned problems, the present invention proposes a kind of firewall management system, client, server end and side
Method enables to the management of fire wall convenient, easy-to-use, improves the experience sense of user.
In order to achieve the above object, the present invention proposes a kind of firewall management system, which includes:Client kimonos
Business device end.
Client sends the solicited message of user to server end for being interacted with user, and shows fire wall
Information, the result information that processing server returns.
Server end, for providing web application interface Web API, solicited message that processing client is sent and and
Fire wall interacts, and is returned by the command down-transmitting for the fire wall for including in solicited message to system kernel and to client
Result information.
Wherein, client uses BootStrap front end frames;Server end uses DjangoRestful frames.
Preferably,
Server end is additionally operable to:The unique identity ID of fire wall is registered in DjangoRestful frames in advance,
And uniform resource position mark URL is specified according to the ID of registration and to refer in DjangoRestful framework initializations for fire wall
Fire wall is stored in DjangoRestful frames and starts the fire wall by fixed URL.
Preferably,
Client is additionally operable to:Operative configuration is carried out by URL access fire-proof walls, and to fire wall.
In order to achieve the above object, the invention also provides a kind of firewall management client, the client, for with
Family interacts, and the solicited message of user is sent to server end, and shows the information of fire wall, what processing server returned
Result information;Wherein, client uses BootStrap front end frames.
Preferably,
Client is additionally operable to:Operative configuration is carried out by preassigned URL access fire-proof walls, and to fire wall.
In order to achieve the above object, the invention also provides a kind of firewall management server end, which is used for
Web application interface Web API are provided, the solicited message that processing client is sent simultaneously is interacted with fire wall, will be asked
The command down-transmitting for the fire wall for including in information returns the result information to system kernel and to client;Wherein, server
End uses DjangoRestful frames.
Preferably,
Server end is additionally operable to:The unique identity ID of fire wall is registered in DjangoRestful frames in advance,
And uniform resource position mark URL is specified according to the ID of registration and to refer in DjangoRestful framework initializations for fire wall
Fire wall is stored in DjangoRestful frames and starts fire wall by fixed URL.
In order to achieve the above object, the invention also provides a kind of firewall management method, this method includes:
Client is interacted with user, and the solicited message of user is sent to server end, and shows the information of fire wall,
The result information that processing server returns.
Server end provides web application interface Web API, the solicited message that processing client is sent and and fire prevention
Wall interacts, and is returned the result by the command down-transmitting for the fire wall for including in solicited message to system kernel and to client
Information.
Wherein, client uses BootStrap front end frames;Server end uses DjangoRestful frames.
Preferably, this method further includes:
The server end registers the unique identity ID of fire wall in DjangoRestful frames in advance, and
Uniform resource position mark URL is specified for fire wall, in DjangoRestful framework initializations, according to the ID of registration and is specified
URL by fire wall be stored in DjangoRestful frames in and start the fire wall.
Preferably, this method further includes:
Client carries out operative configuration by URL access fire-proof walls, and to fire wall.
Compared with prior art, the present invention includes:Client sends to server end and uses for being interacted with user
The solicited message at family, and show the information of fire wall, the result information that processing server returns.Server end, for providing
Web application interface Web API, the solicited message that processing client is sent simultaneously is interacted with fire wall, by solicited message
In include the command down-transmitting of fire wall return the result information to system kernel and to client.Wherein, client uses
BootStrap front end frames;Server end uses DjangoRestful frames.Scheme through the invention enables to prevent fires
The management of wall is convenient, easy-to-use, improves the experience sense of user.
Description of the drawings
The attached drawing in the embodiment of the present invention is illustrated below, the attached drawing in embodiment be for the present invention into one
Step understands, for explaining the present invention together with specification, does not constitute limiting the scope of the invention.
Fig. 1 is 01 composition frame chart of firewall management system of the present invention;
Fig. 2 is that the firewall rule of the embodiment of the present invention adds flow chart;
Fig. 3 is the firewall management method flow diagram of the present invention;
Fig. 4 is the firewall management method overall structure figure of the present invention.
Specific implementation mode
For the ease of the understanding of those skilled in the art, the invention will be further described below in conjunction with the accompanying drawings, not
It can be used for limiting the scope of the invention.
Fully consider user command format and content when carrying out firewall configuration and management using traditional method
It is relatively complicated, it is susceptible to specific, this popular Python Web exploitation frame using Django of configuration omission or mistake
Frame handles the relevant work of firewall management using an independent APP, to greatly improve firewall management efficiency and
Simplify firewall configuration operating process, avoids the system associated safety problem caused by order input error and configuration are omitted.
In order to achieve the above object, the present invention proposes a kind of firewall management system 01, which includes:Client 02
With server end 03.
Client 02 sends the solicited message of user to server end for being interacted with user, and shows fire wall
Information, processing server return result information.Wherein, client 02 uses BootStrap front end frame (web front ends
CSS/HTML frames).
The user interfaces of front end BootStrap frames is graceful, compatible major part JQuery plug-in units and include abundant WEB
Component user can convenient, flexible structure displayed page, the ease for use and friendly interface of the frame can be improved.
In embodiments of the present invention, client is interacted with user, and according to the relevant tube at user's operation invoking server end
Interface is managed, the management and configuration of fire wall are carried out.
Server end 03, for providing web application interface Web API, the solicited message that processing client is sent is simultaneously
It interacts with fire wall, is returned by the command down-transmitting for the fire wall for including in solicited message to system kernel and to client
Return result information.Wherein, server end 03 uses DjangoRestful frames.
Django Restful frames refer to DjangoRestFramwork, can easily dispose web API, are one poly-
Robustness is with elasticity in the web kits of one.User can it is a kind of it is friendly by way of carry out firewall rule display,
New rule addition, redundant rule elimination, configuration application and rule resetting.And under this design structure, if linux fire walls have
New feature generates, and client and server end can easily carry out Function Extension and transformation.Due to DjangoRestful
It is directly independent that APP is each applied in frame, and the change of each APP does not interfere with the function of other modules, frame entirety
High stability.
In embodiments of the present invention, the solicited message that received server-side client is sent, interacts with fire wall,
The firewall interface for operating linux, passes through JSON pairs by the command down-transmitting of fire wall to system kernel and by handling result
The mode of elephant, which is packaged into, to be met the interfaces of DjangoRestful specifications and is supplied to client.
Wherein, JSON (JavaScript Object Notation) is a kind of data interchange format of lightweight.Its base
In a subset of JavaScript (Standard ECMA-2623rd Edition-December 1999).JSON has been used
Entirely independently of the text formatting of language, but also use similar to C language family custom (including C, C++, C#, Java,
JavaScript, Perl, Python etc.).These characteristics make JSON become ideal data interchange language.It is easy to people to read and compile
It writes, while being also easy to machine parsing and generating.
Preferably,
Server end 03 is additionally operable to:The unique identity number of fire wall is registered in DjangoRestful frames in advance
ID, and uniform resource position mark URL is specified for fire wall, in DjangoRestful framework initializations, according to the ID of registration and
Fire wall is stored in DjangoRestful frames and starts the fire wall by specified URL.
Preferably,
Client 02 is additionally operable to:Operative configuration is carried out by URL access fire-proof walls, and to fire wall.
In embodiments of the present invention, an APP of the firewall management as DjangoRestful frames, needs to exist in advance
The lower portion carries out ID registrations and simultaneously specifies a URL of oneself, can will according to these log-on messages when framework initialization
The APP is included in entire frame and starts, and client by the URL access fire-proof walls of registration and can carry out relevant configuration and grasp
Make.
Illustrate how client and server end carries out fire wall in the present invention program below by specific implementation mode
Management.
When adding new firewall rule, as shown in Fig. 2, user can be according to already present rule according to the need of oneself
Add new rule.The solicited message for adding new rule is sent to server end by client, and server end is according to client
The fire wall of solicited message and operating system interacts, and executing related addition order will successfully believe if order runs succeeded
Breath returns to client, if order executes failure, relevant error information is equally returned to client.Similarly, other anti-
The implementation principle of wall with flues operation and addition are similar with the addition of new rule operation.
In order to achieve the above object, the invention also provides a kind of firewall management client 02, the client, for
User interacts, and the solicited message of user is sent to server end, and shows the information of fire wall, and processing server returns
Result information;Wherein, client 02 uses BootStrap front end frames.
Preferably,
Client 02 is additionally operable to:Operative configuration is carried out by preassigned URL access fire-proof walls, and to fire wall.
In order to achieve the above object, the invention also provides a kind of firewall management server end 03, which uses
In providing web application interface Web API, the solicited message that processing client is sent simultaneously is interacted with fire wall, will be asked
The command down-transmitting for the fire wall for including in information is asked to return the result information to system kernel and to client;Wherein, it services
Device end 03 uses DjangoRestful frames.
Preferably,
Server end 03 is additionally operable to:The unique identity number of fire wall is registered in DjangoRestful frames in advance
ID, and uniform resource position mark URL is specified for fire wall, in DjangoRestful framework initializations, according to the ID of registration and
Fire wall is stored in DjangoRestful frames and starts fire wall by specified URL.
In order to achieve the above object, the invention also provides a kind of firewall management methods, as shown in Figure 3, Figure 4, the party
Method includes:
S101, client and user interact, and the solicited message of user is sent to server end, and show fire wall
Information, the result information that processing server returns.Wherein, client uses BootStrap front end frames.
S102, server end provide web application interface Web API, processing client send solicited message and and
Fire wall interacts, and is returned by the command down-transmitting for the fire wall for including in solicited message to system kernel and to client
Result information.Wherein, server end uses DjangoRestful frames.
Preferably, this method further includes:
The server end registers the unique identity ID of fire wall in DjangoRestful frames in advance, and
Uniform resource position mark URL is specified for fire wall, in DjangoRestful framework initializations, according to the ID of registration and is specified
URL by fire wall be stored in DjangoRestful frames in and start the fire wall.
Preferably, this method further includes:
Client carries out operative configuration by URL access fire-proof walls, and to fire wall.
Compared with prior art, the present invention includes:Client sends to server end and uses for being interacted with user
The solicited message at family, and show the information of fire wall, the result information that processing server returns.Server end, for providing
Web application interface Web API, the solicited message that processing client is sent simultaneously is interacted with fire wall, by solicited message
In include the command down-transmitting of fire wall return the result information to system kernel and to client.Wherein, client uses
BootStrap front end frames;Server end uses DjangoRestful frames.Scheme through the invention enables to prevent fires
The management of wall is convenient, easy-to-use, improves the experience sense of user.
It should be noted that embodiment described above be merely for convenience of it will be understood by those skilled in the art that, and
It is not used in and limits the scope of the invention, under the premise of not departing from the inventive concept of the present invention, those skilled in the art couple
Any obvious replacement and improvement that the present invention is made etc. are within protection scope of the present invention.
Claims (7)
1. a kind of firewall management system, which is characterized in that the system comprises:Client and server end;
The client sends the solicited message of the user to the server end, and show for being interacted with user
The information of the fire wall handles the result information that the server end returns;
The server end handles the request that the client is sent for providing web application interface Web API
Information is simultaneously interacted with the fire wall, by the command down-transmitting for the fire wall for including in the solicited message to being
System kernel simultaneously returns to the result information to the client;
Wherein, the client uses BootStrap front end frames;The server end uses DjangoRestful frames;
The server end is additionally operable to:The unique identities of the fire wall are registered in the DjangoRestful frames in advance
Identification number ID, and uniform resource position mark URL is specified for the fire wall, in the DjangoRestful framework initializations,
The fire wall is stored in the DjangoRestful frames and is started according to the ID of registration and the specified URL
The fire wall.
2. firewall management system as described in claim 1, which is characterized in that
The client is additionally operable to:The fire wall is accessed by the URL, and operative configuration is carried out to the fire wall.
3. a kind of firewall management client, which is characterized in that
The client sends the solicited message of the user to server end, and described in displaying for being interacted with user
The information of fire wall handles the result information that the server end returns;Wherein, the client uses the front ends BootStrap
Frame;The server end uses DjangoRestful frames;
The server end handles the request that the client is sent for providing web application interface Web API
Information is simultaneously interacted with the fire wall, by the command down-transmitting for the fire wall for including in the solicited message to being
System kernel simultaneously returns to the result information to the client;
The server end is additionally operable to:The unique identities of the fire wall are registered in the DjangoRestful frames in advance
Identification number ID, and uniform resource position mark URL is specified for the fire wall, in the DjangoRestful framework initializations,
The fire wall is stored in the DjangoRestful frames and is started according to the ID of registration and the specified URL
The fire wall.
4. firewall management client as claimed in claim 3, which is characterized in that
The client is additionally operable to:The fire wall is accessed by preassigned URL, and operation is carried out to the fire wall and is matched
It sets.
5. a kind of firewall management server end, which is characterized in that
The server end, for providing web application interface Web API, solicited message that processing client is sent and and
The fire wall interacts, simultaneously to system kernel by the command down-transmitting for the fire wall for including in the solicited message
Information is returned the result to the client;Wherein, the server end uses DjangoRestful frames;
The server end is additionally operable to:The unique identities of the fire wall are registered in the DjangoRestful frames in advance
Identification number ID, and uniform resource position mark URL is specified for the fire wall, in the DjangoRestful framework initializations,
The fire wall is stored in the DjangoRestful frames and is started according to the ID of registration and the specified URL
The fire wall.
6. a kind of firewall management method, which is characterized in that the method includes:
Client is interacted with user, and the solicited message of the user is sent to server end, and shows the fire wall
Information handles the result information that the server end returns;
The server end registers the unique identity ID of the fire wall in DjangoRestful frames in advance, and
Uniform resource position mark URL is specified for the fire wall, in the DjangoRestful framework initializations, according to registration
The fire wall is stored in the DjangoRestful frames and starts the fire wall by the ID and the specified URL;
The server end provides web application interface Web API, handles the solicited message that the client is sent
And interacted with the fire wall, it will be in the command down-transmitting to system for the fire wall for including in the solicited message
Core simultaneously returns to the result information to the client;
Wherein, the client uses BootStrap front end frames;The server end uses DjangoRestful frames.
7. firewall management method as claimed in claim 6, which is characterized in that the method further includes:
The client accesses the fire wall by the URL, and carries out operative configuration to the fire wall.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510583536.5A CN105100124B (en) | 2015-09-14 | 2015-09-14 | A kind of firewall management system, client, server end and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510583536.5A CN105100124B (en) | 2015-09-14 | 2015-09-14 | A kind of firewall management system, client, server end and method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105100124A CN105100124A (en) | 2015-11-25 |
| CN105100124B true CN105100124B (en) | 2018-10-26 |
Family
ID=54579669
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510583536.5A Active CN105100124B (en) | 2015-09-14 | 2015-09-14 | A kind of firewall management system, client, server end and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105100124B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105577654A (en) * | 2015-12-18 | 2016-05-11 | 浪潮集团有限公司 | Linux dynamic firewall management method |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101022341A (en) * | 2006-03-21 | 2007-08-22 | 飞塔信息科技(北京)有限公司 | System and method for managing network equipment in network |
| CN101977187A (en) * | 2010-10-20 | 2011-02-16 | 中兴通讯股份有限公司 | Firewall policy distribution method, client, access server and system |
| CN104111841A (en) * | 2014-08-08 | 2014-10-22 | 浪潮软件股份有限公司 | Method for realizing microkernel web development frame |
| CN104408167A (en) * | 2014-12-09 | 2015-03-11 | 浪潮电子信息产业股份有限公司 | Method for expanding sqoop function in Hue based on django |
-
2015
- 2015-09-14 CN CN201510583536.5A patent/CN105100124B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101022341A (en) * | 2006-03-21 | 2007-08-22 | 飞塔信息科技(北京)有限公司 | System and method for managing network equipment in network |
| CN101977187A (en) * | 2010-10-20 | 2011-02-16 | 中兴通讯股份有限公司 | Firewall policy distribution method, client, access server and system |
| CN104111841A (en) * | 2014-08-08 | 2014-10-22 | 浪潮软件股份有限公司 | Method for realizing microkernel web development frame |
| CN104408167A (en) * | 2014-12-09 | 2015-03-11 | 浪潮电子信息产业股份有限公司 | Method for expanding sqoop function in Hue based on django |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105100124A (en) | 2015-11-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103903199B (en) | A kind of multi-user's method of ordering and system based on individual mobile terminal | |
| US9189210B2 (en) | Using source code generated from a data model file to generate a graphical user interface from objects in a database | |
| CN106648690A (en) | Code automatic generation method and apparatus | |
| CN107992301A (en) | User interface implementation method, client and storage medium | |
| CN104158836A (en) | Method for rendering mobile application interface through data | |
| CN102646031A (en) | Method for controlling large screen to display contents by mobile terminal | |
| CN110379257B (en) | Multi-language cross-platform online code fighting system and method | |
| CN107357810B (en) | A kind of method and system for landing page for exporting special topic | |
| CN105302564A (en) | Online office software service control and implementation method | |
| JP2021168190A (en) | Method, apparatus, electronic device, and storage medium for providing applet service capability | |
| Heinrich et al. | Reusable awareness widgets for collaborative web applications–a non-invasive approach | |
| CN110166563A (en) | A kind of page login-timeout method for updating time and device | |
| CN105100124B (en) | A kind of firewall management system, client, server end and method | |
| CN102932791A (en) | Method for collaboratively processing information through WIFI wireless network between smart phone and computer | |
| CN104767835B (en) | The configuration system and method for the address URL | |
| JP2008140353A (en) | System for collectively displaying plurality of pieces of social network information | |
| CN106201526B (en) | Service Component method and system | |
| EP3512175A1 (en) | System and protocol for integrating multiple service providers across various domains using a platform | |
| JP2015172940A (en) | Information providing device, information providing method and program | |
| CN105577654A (en) | Linux dynamic firewall management method | |
| Coveney et al. | WEDS: a Web services-based environment for distributed simulation | |
| CN108170458A (en) | A kind of Website page update method and system | |
| CN101146092A (en) | Internet interactive information switching protocol and user switching protocol | |
| JP2006285648A (en) | Authentication support system, authentication support device, authentication support method and program | |
| CN104090760B (en) | Event-driven method and event driven system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |